48 lines
11 KiB
Bash
Executable file
48 lines
11 KiB
Bash
Executable file
#!/usr/bin/env bash
|
|
|
|
set -x
|
|
|
|
cat<<EOF
|
|
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
|
|
<CoreConfiguration xmlns="http:/www.bos_bremen.de/2009/06/eID-Server-CoreConfig">
|
|
<ServerUrl>https://${PUBLIC_HOSTNAME}/eidas-middleware</ServerUrl>
|
|
<sessionManagerUsesDatabase>true</sessionManagerUsesDatabase>
|
|
<sessionMaxPendingRequests>500</sessionMaxPendingRequests>
|
|
<certificateWarningMargin>200</certificateWarningMargin>
|
|
<TimerConfiguration>
|
|
<certRenewal length="2" unit="11"/>
|
|
<blacklistRenewal length="2" unit="11"/>
|
|
<masterAndDefectListRenewal length="2" unit="11"/>
|
|
</TimerConfiguration>
|
|
<ServiceProvider entityID="se-de-middleware" enabled="true">
|
|
<EPAConnectorConfiguration updateCVC="true">
|
|
<CVCRefID>se-de-middleware</CVCRefID>
|
|
<PkiConnectorConfiguration>
|
|
<blackListTrustAnchor>MIIEcTCCA1mgAwIBAgIIDI0LEBD/wRIwDQYJKoZIhvcNAQELBQAwVzEnMCUGA1UEAwweYm9zIENBIGVJRCBDb21tdW5pY2F0aW9uIENlcnRzMR8wHQYDVQQKDBZicmVtZW4gb25saW5lIHNlcnZpY2VzMQswCQYDVQQGEwJERTAeFw0xMzA1MDcwNzQ5MjRaFw0xNjA1MDYwNzQ5MjRaMGgxHjAcBgNVBAMMFWRldi5nb3Zlcm5pa3VzLWVpZC5kZTEYMBYGA1UECwwPdGVzdGNlcnRpZmljYXRlMR8wHQYDVQQKDBZicmVtZW4gb25saW5lIHNlcnZpY2VzMQswCQYDVQQGEwJkZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL9ea6dQveXgc23F7jteqN9L023MpOI7BnqD4YxsrOMfEhHBj1tcr1VpZgxtamhHKEJEqptN5ObotyA/wKqeIBEzLgfLGqMyPqnSyejELRql1KYi+moCgMWNiU5FAfhd29Rgr8rPhPtBSgkO7DQdXzaTQxDxQssUTlK5AifIl/f0+/emGZUknAIfXxgXlNmuSCijAt1qoNkd+VS05unQFYKqb3BfxFQDgHqdmg0caPDvb5KHYuTMGFhmRe3B8lt5ffM+QaIK8q+qTy2rU/4jS331tauGdxDv/JniOV2z5gzut4H42Naek9SPjgotk0ON8B4ZuSZf23pJ9GqRH1v9u+MCAwEAAaOCAS4wggEqMAwGA1UdEwEB/wQCMAAwPwYDVR0lBDgwNgYIKwYBBQUHAwEGCCsGAQUFBwMCBggrBgEFBQcDBAYKKwYBBAGCNxQCAgYKKwYBBAGCNwoDDDAfBgNVHSMEGDAWgBQFIqk8+KQR/Sta43Lw85czVJlxjzAOBgNVHQ8BAf8EBAMCBLAwHQYDVR0OBBYEFFdqnSDAvZJe8F6/4VbhECPNIZf/MEsGCCsGAQUFBwEBBD8wPTA7BggrBgEFBQcwAYYvaHR0cDovL29jc3AuYm9zLWJyZW1lbi5kZS9wdWJsaWN3ZWIvc3RhdHVzL29jc3AwPAYDVR0RBDUwM4IVZGV2LmdvdmVybmlrdXMtZWlkLmRlghpkZXYtZGVtby5nb3Zlcm5pa3VzLWVpZC5kZTANBgkqhkiG9w0BAQsFAAOCAQEAMZaY6wFGQTrb7Ke2cST6ZJrUhs1H70awcWO5abMmFWipwqhaW95oUmZvMFxEZcehKgDej1ltHhwkvcCbhM97+pxNLJWnmwn8fpDn28xkkG1pcnKfz7Nj+Nn66NMFeSU4LCKjmfqhmiqaxk6JHOqHwoG8c2b6X5krVLhhhbTAW4oojmJUhrjeeglPpD60JneVRy1w8qoRaDd5UFaMgwRgi0Nom8qaIcYTZuJYhIRb5sTR2SAVjbpEMwZq3NqczOFTafB6HFsLiHB/6RSBtqAC9KMC9m4LPEQvAWN8+sTltYPio/IoTIUVrU13uzOmxTGmubQx2St/7IBy5m7dlk0WUQ==</blackListTrustAnchor>
|
|
<masterListTrustAnchor>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</masterListTrustAnchor>
|
|
<defectListTrustAnchor>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</defectListTrustAnchor>
|
|
<policyImplementationId>govDvca</policyImplementationId>
|
|
<sslKeys id="default">
|
|
<serverCertificate>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</serverCertificate>
|
|
<clientCertificate>MIID4zCCAsugAwIBAgIIdq/dlyQqL9wwDQYJKoZIhvcNAQELBQAwXDEkMCIGA1UEAwwbR292ZXJuaWt1cyBSb290IENBIDIgZWlkOlBOMRYwFAYDVQQKDA1Hb3Zlcm5pa3VzIEtHMQ8wDQYDVQQHDAZCcmVtZW4xCzAJBgNVBAYTAkRFMB4XDTE3MDQxMjA5NDUyN1oXDTIwMDQxMTA5NDUyN1owYjEfMB0GA1UEAwwWU0UtRUlEQVMtTVcuY2xpZW50LXBraTEaMBgGA1UECwwRZWlkIGNvbW11bmljYXRpb24xFjAUBgNVBAoMDUdvdmVybmlrdXMgS0cxCzAJBgNVBAYTAmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpvhTOpd9x+AbPoNDwrVwjoEJFHjCjsW7n8t/hr1gIQWDu9wDQcuTea+GkFVPL1ghYc0dUeXOFnCXYQ5PcoUVlCZay8L+TuCMC6dsXO66HIIpYNhe+wE/KpY450mD/eIli6vAA5GS3+RU90ottjKw+njuDiFMkO2ExzYG0F6kI+rggCD23SwKj5ZwlpPeLGtvZDHGbmdLb2EOa5hRBjp1469E1izwbg6AX0PH+Qf5ghdI3dhIFuc6epOsYLOy164Ueo0RkUJ5zTu1ErnYYAGhbId9smy4bXfEX8ovokQg8MqeGhfUqA2q+0AJYuANJfwQawkf9uoEiUC72EbhmGKawIDAQABo4GiMIGfMB0GA1UdDgQWBBTkSDBlsQSEOtEqfVMEp8ThYMWZRTAMBgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFPdDHK1itiL2tkVdoK6v8vJsSC5fMA4GA1UdDwEB/wQEAwIEsDA/BgNVHSUEODA2BggrBgEFBQcDAQYIKwYBBQUHAwIGCCsGAQUFBwMEBgorBgEEAYI3FAICBgorBgEEAYI3CgMMMA0GCSqGSIb3DQEBCwUAA4IBAQCGnuozL1NSEWOEUdqg6ws52PDWzz2BY59RN7f/YX7KnIH49xhWAP3xd8ZRzbPKBJEfFF7OVHSrzPLYjNCcfsbROHZxb41N+tltpakrGOAUSVgy+l7Wn4H8NrItYpBB/EXlBP1Xg7DYEFn+qFNVkO1TEAgQMqqPz1WDawnDvBbmXEKLTcImvQnMzx8BjP4oyY8isTSjXT4vqqJqtkd42RKItZ8HMm/X7tM0O8agfuboZuWVTk/gJZh3MsP7u1fHZ5YOhK86qAEAKfUSOR48gE8oQfcpLeO+J/I5KprzLa1bcGIE3EDVlfud7eM2rMU5UwJVAPsXmsF9OIReIx7J4w8M</clientCertificate>
|
|
<clientKey>MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQCSm+FM6l33H4Bs+g0PCtXCOgQkUeMKOxbufy3+GvWAhBYO73ANBy5N5r4aQVU8vWCFhzR1R5c4WcJdhDk9yhRWUJlrLwv5O4IwLp2xc7rocgilg2F77AT8qljjnSYP94iWLq8ADkZLf5FT3Si22MrD6eO4OIUyQ7YTHNgbQXqQj6uCAIPbdLAqPlnCWk94sa29kMcZuZ0tvYQ5rmFEGOnXjr0TWLPBuDoBfQ8f5B/mCF0jd2EgW5zp6k6xgs7LXrhR6jRGRQnnNO7USudhgAaFsh32ybLhtd8Rfyi+iRCDwyp4aF9SoDar7QAli4A0l/BBrCR/26gSJQLvYRuGYYprAgMBAAECggEAKoGJU9yLe8+lU3M4AAl7KkHZ25HmSpwRLPqwogC89xLUtmXTTeOsGCfzK/ePN/oMFwq5OduUy2CyypxAYFrLhK7/nCTaytrnBwMs8zsDkMsnGJ270MsAMyVMekmgtHZnImvMjy6UUOVehDsVx9WZDC4uuMWiUI1zJ51wRo64c1rTVKqJZ6u3MsOX2gMcFZJZTnJ394P04rnlTS2Jdb45NS6o4zPnGGnLbR2TtW0p3I0PnRbC2tbeP5p06QdgkP6LazAg5b8yGP/SfGmu1whvZLEJmunDH/npsTlQdwX7Z1bWaAOtvCirIByBFOgD6VEqX2cUQKPu8AOPZTvJpkB4gQKBgQDVuCEc5Oq+ZeqzrZYp3lTBZL92YrA0Y3o22dYO/+wuGJ4Md4YMpIR8KTbmNtf2ia95TBX5MBr+Eso4SjFI5Y0x3IL1u1kcivnjHMfyteSxlhcVkXh+4Ox3MWjmxnDl/o2mJM3981dZLiTp+Yu/Iq50EF8QbVlo4zGRJuNK8KFlQQKBgQCvnO25F2y8nAudKtXgQwnubK4Jl2PH2KDHAeZutDhjXwOvkrfMEPF06rR+C8hVsM9zMReMRFq+To3DmwmOTMOTPA4QxtI5DH+oNzuqtSDiNj0U7SIgx9l03/qkbNF3t1a3vc8yovsb3FcE0Cp6vI9JqUkKiYbK+s3IMCndwtDoqwKBgEkYrAKk7QDn/MktktGJIHXwzmdgQ6H3cCJ4iPUiZRYzB0N+UdPbJREOS5+bnGvPFbwn4NAUuvaxWIa+IXMsSAmIwSXoyQaxJdyeyGhj++8dRZHz6kGDDn2J4bYkoxKW6L2tkuLLqtFureN0nW5nH0HFI66Lp+vu4NIjedP0z07BAoGAEX4QL9+ldSQWBBHAPBZxZs5sh4gM6FsrqKcHzP8mnr9YHqT+qdUGOB8o22VRDzgNcevx7IbigxJQDKvkx8fds0zIGeO0DPqxvI/D4b0pCV9dtjforls5zeqBjN9J/iLFAIhnmyOg36WTBWe204L0wuGZ5PLN+moBFW+2u+Ar7wECgYEApP+PJPSHrYfNg56mdanPHvMUtdOQzssEuRtVjemoILDnXuD4ZDcjWJAbEMCAqJMYq97KOrfKBHwb5sXHE4lwIZdogyu/7sBOAVpr4pr8mhpbF98g3NbZlndXgCptlvj7fgG3Ekw5pk2rSSqfrly3dXFYH0VNSL5i70pA5QY0hoc=</clientKey>
|
|
</sslKeys>
|
|
<terminalAuthService sslKeysId="default">
|
|
<url>https://dev.governikus-eid.de:9444/gov_dvca/ta-service</url>
|
|
</terminalAuthService>
|
|
<restrictedIdService sslKeysId="default">
|
|
<url>https://dev.governikus-eid.de:9444/gov_dvca/ri-service</url>
|
|
</restrictedIdService>
|
|
<passiveAuthService sslKeysId="default">
|
|
<url>https://dev.governikus-eid.de:9444/gov_dvca/pa-service</url>
|
|
</passiveAuthService>
|
|
<dvcaCertDescriptionService sslKeysId="default">
|
|
<url>https://dev.governikus-eid.de:9444/gov_dvca/certDesc-service</url>
|
|
</dvcaCertDescriptionService>
|
|
</PkiConnectorConfiguration>
|
|
<PaosReceiverURL>https://demw.eidastest.se/eidas-middleware/paosreceiver</PaosReceiverURL>
|
|
<hoursRefreshCVCBeforeExpires>48</hoursRefreshCVCBeforeExpires>
|
|
</EPAConnectorConfiguration>
|
|
</ServiceProvider>
|
|
</CoreConfiguration>
|
|
EOF
|